Appendix A. Security and QoS Configuration Messages

This appendix describes the switch error messages for configuring network security with access control lists (ACLs) and for configuring quality of service (QoS). In Table 4, Access Control Parameters (ACPs) are referred to as masks. For more information about ACPs, refer to the software configuration guide for this release.

Table 4. Common ACL Error Messages .

Error Message

Explanation and Suggested Solution

 

 

%Error:Class-map [class-map name] has a

This error message means that the policy map has a

different mask than the Policymap

different mask than the class map.

[policy-map name]

Use the same mask in both the class map and the policy

 

 

map.

 

 

%Error:Class-maps have a mix of System

This error message means that a combination of system-

Defined

defined and user-defined masks has been used in the

and User Defined masks within the

multiple class maps that are part of a policy map.

Policymap

 

[policy-map name]

Class maps that are in a policy map cannot have ACLs that

 

use both system-defined masks and user-defined masks.

 

 

%Error:System Defined ACEs of TCP/UDP and

This error message means that a combination of Layer 3

IP

system-defined access control entries (ACEs) and Layer 4

cannot exist together in a policy-map.

system-defined ACEs is in the same policy map.

Check

 

policy-map :[policy-map name]

A policy map cannot have both Layer 3 system-defined

 

ACEs and Layer 4 system-defined ACEs.

 

Note: You cannot have masks such as permit tcp any

 

any, permit udp any any, and permit ip any any within

 

the same policy map.

 

 

%Error:Service-Policy is not supported on

This error message means that you have tried to attach a

VLAN

policy map to a VLAN interface.

interface

 

 

A policy map can be attached only to a physical interface.

 

 

%Error:Invalid policy-map

This error message means that the policy map is invalid.

 

This message is normally preceded by a more explicit error

 

message that gives details about the reasons for the

 

invalidity of the policy map.

 

 

%Error:Match Numbered Attach Filter :ONLY

This error message means that there was an attempt to add

one

another numbered ACL in the class map.

ACL allowed in a class-map

Only one ACL is allowed in a class map.

 

 

 

%Error:Deny ACE not supported in access-

This error message means that a deny ACE has been

group

entered in an access group within a class map.

within a class-map.

A deny ACE is not supported in an access group within a

Check class-map : [class-map name]

 

class map.

 

 

%Error:System Defined and User Defined

This error message means that a combination of system-

ACEs

defined and user-defined masks has been used in an

cannot exist together in access-group

access group within a class map.

within a

 

class-map.

The access group in a class map cannot have ACLs that

Check class-map : [class-map name]

use both system-defined masks and user-defined masks.

 

 

 

© Copyright IBM Corp. 2004

47

Page 49
Image 49
Cisco Systems Intelligent Gigabit Ethernet Switch Module manual Appendix A. Security and QoS Configuration Messages

Intelligent Gigabit Ethernet Switch Module specifications

Cisco Systems is a leader in networking technology, and their Intelligent Gigabit Ethernet Switch Module exemplifies the innovations the company brings to the realm of networking. Designed for flexibility, performance, and scalability, the switch module is tailored for enterprise environments that require robust and reliable network infrastructure.

One of the key features of the Intelligent Gigabit Ethernet Switch Module is its support for high-speed data transfer. With Gigabit Ethernet capabilities, it enables fast and efficient communication between devices, reducing latency and increasing productivity. This high-speed connectivity supports various applications, including video streaming, VoIP, and large file transfers.

Another major characteristic of the module is its versatility. The switch module is compatible with a range of Cisco platforms, allowing users to easily integrate it into their existing network setups. This compatibility means organizations can expand their network capabilities without needing to overhaul their entire infrastructure.

Security is another prominent feature of the Intelligent Gigabit Ethernet Switch Module. It incorporates advanced security protocols, ensuring that sensitive data remains protected as it traverses the network. Features like port security, access control lists (ACLs), and network segmentation help mitigate potential risks and safeguard against unauthorized access.

The module also integrates advanced traffic management technologies. Quality of Service (QoS) features allow administrators to prioritize critical traffic, ensuring that time-sensitive applications receive the necessary bandwidth. Moreover, Layer 2 and Layer 3 capabilities enable efficient routing and switching of data, further enhancing network performance.

Energy efficiency is a hallmark of the Intelligent Gigabit Ethernet Switch Module as well. Cisco has designed the module with environmentally friendly technologies that reduce power consumption, contributing to lower operational costs and a reduced carbon footprint.

In addition, the switch module supports automation and programmability features such as Cisco’s DNA Center, which provides a centralized management platform for monitoring and controlling network activity. This capability allows for easier deployment of policies, enhancing operational efficiency.

Overall, the Cisco Systems Intelligent Gigabit Ethernet Switch Module is a powerful networking solution, combining high-speed performance, advanced security, versatile integration, and efficient management to meet the growing demands of modern enterprise networks. As organizations continue to evolve, this switch module stands out as a reliable choice for companies seeking to optimize their network infrastructure for future challenges.